More results...
Penalty from Ireland’s privacy regulator is a record for breach of EU data protection regulationBusiness live – latest updatesFacebook’s owner, Meta, has been fined a record €1.2bn (£1bn) and ordered to suspend the transfer of user data from the EU to …
For many outside the data privacy and IT governance, risk management and compliance sectors, the GDPR (General Data Protection Regulation) seemed to appear five years ago as if from nowhere. It had barely made the news before May 2018, but in the weeks running up to its effective date of 25 May 2018 it gained the sort of media coverage and popular interest that most aspirant celebrities can only yearn for. (Indeed, the European Commission proudly shared in a since-deleted infographic that ‘GDPR’ was googled more often than Beyoncé or Kim Kardashian.) The Regulation’s time in the media spotlight didn’t
The post Five Years of the EU General Data Protection Regulation and Data Protection Act 2018 appeared first on IT Governance UK Blog.
Google made a recent move to secure state, local, tribal and territorial governments from cyber attacks.
The post Google moves to keep public sector cybersecurity vulnerabilities leashed appeared first on TechRepublic.
Did the sentence fit the crime? Read the backstory, and then have your say in our comments! (You may post anonymously.)
Campaigners, unions and MPs raise concerns about surveillance and use of ‘management by algorithm’ Campaigners, trade unions and MPs are calling for stricter oversight of the use of artificial intelligence in the workplace, amid growing concerns about…
Article 17 of the GDPR (General Data Protection Regulation) plays a distinctive yet essential role in data protection law. It enshrines “the right to erasure” (sometimes referred to as “the right to be forgotten”), which allows people to request that an organisation deletes any personal data related to them. There are several reasons why someone might make such a request, and in almost all instances, the organisation must comply. Failure to fulfil this requirement is considered a serious breach and could be penalised under the GDPR’s upper tier of fines of €20 million (£17.5 million under the UK GDPR) or
The post GDPR Article 17: What Is the Right to Erasure? appeared first on IT Governance UK Blog.
Under EU and UK law, individuals have the right to know what personal data an organisation processes about them and how it is used. They can exercise this right by submitting a DSAR (data subject access request). The rules for DSARs are outlined in the GDPR (General Data Protection Regulation), and these have been carried over into UK data protection law with only a few exemptions, which are detailed in Section 45(4) of the DPA (Data Protection Act) 2018. DSARs as a concept were not created with the GDPR, but the legislation standardised several processes that make it easier for
The post How to Respond to a Data Subject Access Request (DSAR) appeared first on IT Governance UK Blog.
Tracking pixels like the Meta and TikTok pixels are popular tools for online businesses to monitor their website visitors’ behaviors and preferences, but they do come with risks. While pixel technology has been around for years, privacy regulatio…
The White House’s National Cybersecurity Strategy unveiled yesterday is an ambitious blueprint for improving U.S. cybersecurity and threat response, but some of the more ambitious items will take time to implement, and could face opposition from Congress. President Biden came into office around the time of the SolarWinds and Colonial Pipeline cyber attacks, so cybersecurity […]
The post Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles appeared first on eSecurityPlanet.
By Waqas
Gustaffo Digital Service GmbH has been leaking personal and contact details of its customers since last month.
This is a post from HackRead.com Read the original post: Austrian ‘mobile concierge’ app Gustaffo leaking 100k customers…